69 matches found
PT-2026-3521
Name of the Vulnerable Software and Affected Versions MineAdmin versions 1.x through 2.x Description A flaw exists in MineAdmin that allows information disclosure. This occurs due to manipulation of the ID argument within the /system/downloadById file. The attack can be initiated remotely and is...
MineAdmin Access Control Vulnerability
MineAdmin is an open-source permission management system developed by MineAdmin. Versions 1.x and 2.x of MineAdmin contain access control vulnerabilities, which stem from improper handling of the Swagger component. These vulnerabilities could lead to information leaks...
MineAdmin Access Control Vulnerability
MineAdmin is an open-source permission management system developed by MineAdmin. Versions 1.x and 2.x of MineAdmin contain access control vulnerabilities. These vulnerabilities stem from incorrect operations with parameter IDs in files/systems and getFileInfoById, which may lead to information...
MineAdmin Data Forgery Vulnerability
MineAdmin is an open-source permission management system developed by MineAdmin. Versions 1.x and 2.x of MineAdmin have a vulnerability related to data falsification, which stems from insufficient verification of data authenticity...
CVE-2026-1194
A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...
CVE-2026-1194 MineAdmin Swagger information disclosure
A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...
CVE-2026-1194 MineAdmin Swagger information disclosure
A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...
CVE-2026-1194
The CVE-2026-1194 entry concerns MineAdmin 1.x/2.x, specifically a vulnerability in the Swagger component that leads to information disclosure. The issue is remotely exploitable and has a publicly released exploit; attacker may access sensitive information via the Swagger function. Affected produ...
CVE-2026-1193
A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...
CVE-2026-1193
A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...
CVE-2026-1193
A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...
CVE-2026-1193 MineAdmin View view improper authorization
A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...
CVE-2026-1193
Summary of CVE-2026-1193 (MineAdmin) : MineAdmin 1.x/2.x is affected by an improper authorization issue in an unknown function of the file /system/cache/view within the View Interface component. The root cause suggests misimplementation of access controls, enabling remote exploitation. Multiple s...
CVE-2026-1193 MineAdmin View view improper authorization
A vulnerability was identified in MineAdmin 1.x/2.x. The impacted element is an unknown function of the file /system/cache/view of the component View Interface. The manipulation leads to improper authorization. The attack is possible to be carried out remotely. The exploit is publicly available a...
MineAdmin Authorization Issue Vulnerability
MineAdmin is an open-source permission management system developed by MineAdmin. Versions 1.x and 2.x of MineAdmin have vulnerabilities related to authorization. These vulnerabilities stem from improper access control over files/system/cache/view, which can lead to improper authorization settings...
PT-2026-3514
Name of the Vulnerable Software and Affected Versions MineAdmin versions 1.x and 2.x Description A security issue exists in MineAdmin that allows for improper authorization. The issue is related to an unknown function within the /system/cache/view file of the View Interface component. This issue ...
PT-2026-3518
A security flaw has been discovered in MineAdmin 1.x/2.x. This affects an unknown function of the component Swagger. The manipulation results in information disclosure. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The vendor was...
Improper Access Control
mineadmin/mineadmin is vulnerable to Improper Access Control. The vulnerability is due to insecure permission settings in the scheduled tasks feature, which allows an attacker to execute arbitrary commands and potentially achieve full account takeover...
CVE-2025-65854
Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeover...
GHSA-X6MH-4W8X-P34V MineAdmin has an insecure default password
Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute arbitrary commands and execute a full account takeover...